Introducing atsec information security. Helmut Kurth, Sal la Pietra and Staffan Persson

Transcription

1 Introducing atsec information security Helmut Kurth, Sal la Pietra and Staffan Persson

2 Who are we? atsec information security is a government accredited lab for testing information assurance (IA) and IA-enabled commercial off the shelf (COTS) information technology. Whether you need information security consulting, compliance, testing or evaluation services, atsec can help. 2

3 Foundations The company was founded in January 2000 by three internationally-recognized IT security professionals: Helmut Kurth, Sal La Pietra, and Staffan Persson Sharing a passion for IT security and confident that a company focused solely on providing information security services would be successful, they financed the new business themselves. Since then atsec has grown steadily and organically. We are lucky to be financially independent. We have no venture capital, no credit debt or loans. Thanks to our customers, we truly are independent! 3

4 atsec s business principles We know the business atsec knows the worldwide information security consulting business very well. With a multinational staff, it is only natural that we feel comfortable operating internationally. We are a company with global reach. We act with integrity Information security consulting and evaluation is a high-integrity business, and very much a matter of trust. All atsec employees are committed to sustaining the highest degree of integrity in our client relationships. We are devoted to delivering the highest quality in a timely manner. 4

5 atsec s business principles We stay focused atsec consultants are information security consultants. As such atsec focuses solely on information security consulting. We do not consult in any other areas, and we do not sell hardware, software, or any other ware. We are independent We are not affiliated with any hardware or software vendor, and we never will be. Our credibility as consultants hinges on that independence. Our customers can rely on us to be objective. We have no interest in selling anything other than our security expertise. 5

6 Our services We provide service in all IT security areas Evaluation, Testing and Assessment Compliance and Audit Consulting and Training Consulting services 6

7 Evaluation, testing and assessment atsec s world-renowned testing laboratories offer formal testing in several international certification schemes. Common Criteria in Germany, U.S. and Sweden Cryptographic module testing to FIPS Cryptographic algorithm testing Security Content Automation Protocol (SCAP) Personal Identity Verification Program (NPIVP) Testing GSA Personal Identity Verification Testing (FIPS 201) Payment Card Industry: Qualified Security Assessor Payment Card Industry: Approved Scanning Vendor Payment Card Industry: Payment Application QSA 7

8 Compliance and audit atsec s consultants work with organizations to implement and integrate a variety of requirements for compliance into one efficient and effective management system. ISO/IEC FISMA NASPO HIPAA & HITECH SOX & EuroSOX Digital Signature Compliance 8

9 Consulting and training atsec consultants have longstanding expertise in IT security consulting. We offer services in many technologies. Hardware Testing Biometrics Embedded Systems Voting System Testing and Analysis Penetration Testing Source Code Analysis Web Application testing Training 9

10 Versatility Our basket of security experts allows us to offer true expert consultancy and not just production line service. We offer customized services and combine them in ways that help customers gain the assurance that they need. For example National accreditation scheme development Cryptographic export control regulations Integrated management systems We sometimes open new offices and develop new services because that is what our customers need. 10

11 Why are we different? We are industry leaders with many renowned experts of IT security in our basket. We take time to understand your problems and use that knowledge to innovate and design solutions that give satisfaction. Quality: We are ISO 9001 and ISO/IEC certified ourselves. We understand that being on time can make all the difference. We are independent of external influences, from finance to partnerships with product vendors. 11

12 Find out much more at atsec s thought leadership at We re also on Facebook! 12